Overview
| Artifact ID: | e7bb9aeb0cde99d3bd3e7da8e592378bdd634b88 |
|---|---|
| Page Name: | kmod-nokeyctl |
| Date: | 2016-01-20 15:45:38 |
| Original User: | rkeene |
| Mimetype: | text/x-markdown |
| Parent: | 0c640fb0f175a6ebf0cfe3366902589b289a3344 (diff) |
Content
kmod-nokeyctl
Simple kernel module which disables the keyctl(2) system call to workaround CVE-2016-0728 on vulnerable systems without rebooting until a proper patch can be applied.
Download
- Version 1 (LATEST)
Usage
$ ./configure
$ make
$ sudo -i insmod "$(pwd)/nokeyctl.ko"
Verification
$ sudo dmesg
...
[2811856.665590] [nokeyctl] keyctl syscall disabled
Removal
$ sudo -i rmmod nokeyctl